Overview

overview

7

Static

static

7

691f1c48f6...18.exe

windows7-x64

7

691f1c48f6...18.exe

windows10-2004-x64

7

$PLUGINSDI...es.dll

windows7-x64

3

$PLUGINSDI...es.dll

windows10-2004-x64

3

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

$PLUGINSDI...LL.dll

windows7-x64

3

$PLUGINSDI...LL.dll

windows10-2004-x64

3

$PLUGINSDI...ry.dll

windows7-x64

3

$PLUGINSDI...ry.dll

windows10-2004-x64

3

$PLUGINSDI...xe.dll

windows7-x64

3

$PLUGINSDI...xe.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...os.dll

windows7-x64

3

$PLUGINSDI...os.dll

windows10-2004-x64

3

$PLUGINSDIR/inetc.dll

windows7-x64

3

$PLUGINSDIR/inetc.dll

windows10-2004-x64

3

$PLUGINSDI...gs.dll

windows7-x64

3

$PLUGINSDI...gs.dll

windows10-2004-x64

3

$PLUGINSDI...ss.dll

windows7-x64

3

$PLUGINSDI...ss.dll

windows10-2004-x64

3

$TEMP/Yandex.exe

windows7-x64

6

$TEMP/Yandex.exe

windows10-2004-x64

6

$TEMP/downloader.exe

windows7-x64

1

$TEMP/downloader.exe

windows10-2004-x64

1

$TEMP/vcre...86.exe

windows7-x64

7

$TEMP/vcre...86.exe

windows10-2004-x64

7

CrashRpt.dll

windows7-x64

1

CrashRpt.dll

windows10-2004-x64

1

CrashSender.exe

windows7-x64

1

CrashSender.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    148s
  • max time network
    154s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240508-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
  • submitted
    23-05-2024 00:20

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    $TEMP/Yandex.exe

  • Size

    759KB

  • MD5

    10dca0f2258ee6503b93ee5804aa4e2b

  • SHA1

    3ba8b580d97510c6c76bd887bb682a5196521a15

  • SHA256

    da696514fca4f93ad5bb13971c9a59cdcfce1a4748c80e191a8fc94be7bf0df7

  • SHA512

    7d5bf5a7ef912aa6f14746114ed2a17c99fd04db6bc15fe6fec02141d6e17d68eb03c76c2439ab07a4767c6d37a4c268b08b7ffe41c4f123e184a6bbc9a12718

  • SSDEEP

    12288:22FONX3LhEUt+g4wRvNvEFUL28WOORsDcRsQHvYd5uzDCZDJjTPwMV0kESO:22FONnL9PvES28WnyQPYqDS9jV0d9

Score
6/10

Malware Config

Signatures

  • Downloads MZ/PE file

Processes

  • C:\Users\Admin\AppData\Local\Temp\$TEMP\Yandex.exe
    "C:\Users\Admin\AppData\Local\Temp\$TEMP\Yandex.exe"
    1⤵
      PID:3720

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
      Filesize

      8KB

      MD5

      90e5efeae9f1d840ae81cc20b884ee7d

      SHA1

      6edf119545a4ff1dfa60e7604e0a10760d91d655

      SHA256

      7a41679648c4d23fd26e326c634a6563cbc5f99ea816ea162eff90603524f04c

      SHA512

      79d62a783c34abf295f56c7958c9ac579237197960aeb4b21f80e0cb247230197ddc8ba4deed01b57e9c24ee807e5d93dacb7a9dd63d0fddf9479af922310993

      Download Submit
    • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
      Filesize

      2KB

      MD5

      784320c74d9daf22e2109f66399e82cb

      SHA1

      445ecfc49b93f7b013b67e3bad51aa4cc2ce5b66

      SHA256

      0041fbd357137a44a4928541cb08d5758bd9d4ffb7cc5e2d8bf46fe76356d1c8

      SHA512

      03dae426c4cba2c05ad7aaacf07e6b30d75e92476edf7b600b6128e21a53281962771fe0c80fedfbf068ad9efcfa212270774638e67cab3c0ff49636b02d0289

      Download Submit